master/doxygen/certificate-storage_8cpp_source.html

 /* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */

 /*

  * Copyright (c) 2013-2023 Regents of the University of California.

  *

  * This file is part of ndn-cxx library (NDN C++ library with eXperimental eXtensions).

  *

  * ndn-cxx library is free software: you can redistribute it and/or modify it under the

  * terms of the GNU Lesser General Public License as published by the Free Software

  * Foundation, either version 3 of the License, or (at your option) any later version.

  *

  * ndn-cxx library is distributed in the hope that it will be useful, but WITHOUT ANY

  * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A

  * PARTICULAR PURPOSE.  See the GNU Lesser General Public License for more details.

  *

  * You should have received copies of the GNU General Public License and GNU Lesser

  * General Public License along with ndn-cxx, e.g., in COPYING.md file.  If not, see

  * <http://www.gnu.org/licenses/>.

  *

  * See AUTHORS.md for complete list of ndn-cxx authors and contributors.

  */


 #include "ndn-cxx/security/certificate-storage.hpp"


 namespace ndn::security {


 CertificateStorage::CertificateStorage()

   : m_verifiedCertCache(1_h)

   , m_unverifiedCertCache(5_min)

 {

 }


 const Certificate*

 CertificateStorage::findTrustedCert(const Interest& interestForCert) const

 {

   if (auto cert = m_trustAnchors.find(interestForCert); cert != nullptr) {

     return cert;

   }

   return m_verifiedCertCache.find(interestForCert);

 }


 bool

 CertificateStorage::isCertKnown(const Name& certName) const

 {

   return m_trustAnchors.find(certName) != nullptr ||

          m_verifiedCertCache.find(certName) != nullptr ||

          m_unverifiedCertCache.find(certName) != nullptr;

 }


 void

 CertificateStorage::loadAnchor(const std::string& groupId, Certificate&& cert)

 {

   m_trustAnchors.insert(groupId, std::move(cert));

 }


 void

 CertificateStorage::loadAnchor(const std::string& groupId, const std::string& certfilePath,

                                time::nanoseconds refreshPeriod, bool isDir)

 {

   m_trustAnchors.insert(groupId, certfilePath, refreshPeriod, isDir);

 }


 void

 CertificateStorage::resetAnchors()

 {

   m_trustAnchors.clear();

 }


 void

 CertificateStorage::cacheVerifiedCert(Certificate&& cert)

 {

   m_verifiedCertCache.insert(std::move(cert));

 }


 void

 CertificateStorage::resetVerifiedCerts()

 {

   m_verifiedCertCache.clear();

 }


 void

 CertificateStorage::cacheUnverifiedCert(Certificate&& cert)

 {

   m_unverifiedCertCache.insert(std::move(cert));

 }


 const TrustAnchorContainer&

 CertificateStorage::getTrustAnchors() const

 {

   return m_trustAnchors;

 }


 const CertificateCache&

 CertificateStorage::getVerifiedCertCache() const

 {

   return m_verifiedCertCache;

 }


 const CertificateCache&

 CertificateStorage::getUnverifiedCertCache() const

 {

   return m_unverifiedCertCache;

 }


 } // namespace ndn::security

certificate-storage.hpp

ndn::Interest
Represents an Interest packet.
Definition: interest.hpp:50

ndn::Name
Represents an absolute name.
Definition: name.hpp:45

ndn::security::CertificateCache
Represents a container for verified certificates.
Definition: certificate-cache.hpp:42

ndn::security::CertificateCache::insert
void insert(const Certificate &cert)
Insert certificate into cache.
Definition: certificate-cache.cpp:37

ndn::security::CertificateCache::find
const Certificate * find(const Name &certPrefix) const
Get certificate given key name.
Definition: certificate-cache.cpp:59

ndn::security::CertificateCache::clear
void clear()
Remove all certificates from cache.
Definition: certificate-cache.cpp:53

ndn::security::CertificateStorage::findTrustedCert
const Certificate * findTrustedCert(const Interest &interestForCert) const
Find a trusted certificate in trust anchor container or in verified cache.
Definition: certificate-storage.cpp:33

ndn::security::CertificateStorage::cacheUnverifiedCert
void cacheUnverifiedCert(Certificate &&cert)
Cache unverified certificate for a period of time (5 minutes).
Definition: certificate-storage.cpp:81

ndn::security::CertificateStorage::getTrustAnchors
const TrustAnchorContainer & getTrustAnchors() const
Definition: certificate-storage.cpp:87

ndn::security::CertificateStorage::resetAnchors
void resetAnchors()
Remove any previously loaded static or dynamic trust anchor.
Definition: certificate-storage.cpp:63

ndn::security::CertificateStorage::m_unverifiedCertCache
CertificateCache m_unverifiedCertCache
Definition: certificate-storage.hpp:133

ndn::security::CertificateStorage::cacheVerifiedCert
void cacheVerifiedCert(Certificate &&cert)
Cache verified certificate a period of time (1 hour).
Definition: certificate-storage.cpp:69

ndn::security::CertificateStorage::CertificateStorage
CertificateStorage()
Definition: certificate-storage.cpp:26

ndn::security::CertificateStorage::isCertKnown
bool isCertKnown(const Name &certPrefix) const
Check if certificate exists in the verified/unverified cache or in the set of trust anchors.
Definition: certificate-storage.cpp:42

ndn::security::CertificateStorage::getVerifiedCertCache
const CertificateCache & getVerifiedCertCache() const
Definition: certificate-storage.cpp:93

ndn::security::CertificateStorage::m_trustAnchors
TrustAnchorContainer m_trustAnchors
Definition: certificate-storage.hpp:131

ndn::security::CertificateStorage::loadAnchor
void loadAnchor(const std::string &groupId, Certificate &&cert)
Load static trust anchor.
Definition: certificate-storage.cpp:50

ndn::security::CertificateStorage::resetVerifiedCerts
void resetVerifiedCerts()
Remove any cached verified certificates.
Definition: certificate-storage.cpp:75

ndn::security::CertificateStorage::getUnverifiedCertCache
const CertificateCache & getUnverifiedCertCache() const
Definition: certificate-storage.cpp:99

ndn::security::CertificateStorage::m_verifiedCertCache
CertificateCache m_verifiedCertCache
Definition: certificate-storage.hpp:132

ndn::security::Certificate
Represents an NDN certificate.
Definition: certificate.hpp:58

ndn::security::TrustAnchorContainer
A container for trust anchors.
Definition: trust-anchor-container.hpp:54

ndn::security::TrustAnchorContainer::find
const Certificate * find(const Name &keyName) const
Search for certificate across all groups (longest prefix match).
Definition: trust-anchor-container.cpp:79

ndn::security::TrustAnchorContainer::insert
void insert(const std::string &groupId, Certificate &&cert)
Insert a static trust anchor.
Definition: trust-anchor-container.cpp:45

ndn::security::TrustAnchorContainer::clear
void clear()
Remove all static or dynamic anchors.
Definition: trust-anchor-container.cpp:72

ndn::security
Contains the ndn-cxx security framework.
Definition: additional-description.cpp:26

ndn::time::nanoseconds
::boost::chrono::nanoseconds nanoseconds
Definition: time.hpp:54